Vulnerability Summary for the Week of April 19, 2021

Original release date: April 26, 2021  High Vulnerabilities Primary Vendor -- Product Description Published CVSS Score Source & Patch Info adobe -- robohelp Adobe Robohelp version 2020.0.3 (and earlier) is…

Comments Off on Vulnerability Summary for the Week of April 19, 2021

AA21-116A: Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders

Original release date: April 26, 2021SummaryThe Federal Bureau of Investigation (FBI), Department of Homeland Security (DHS), and Cybersecurity and Infrastructure Security Agency (CISA) assess Russian Foreign Intelligence Service (SVR) cyber…

Comments Off on AA21-116A: Russian Foreign Intelligence Service (SVR) Cyber Operations: Trends and Best Practices for Network Defenders

CISA Incident Response to SUPERNOVA Malware

Original release date: April 22, 2021CISA has released AR21-112A: CISA Identifies SUPERNOVA Malware During Incident Response to provide analysis of a compromise in an organization’s enterprise network by an advance…

Comments Off on CISA Incident Response to SUPERNOVA Malware

SonicWall Releases Patches for Email Security Products

Original release date: April 21, 2021CISA is aware of three vulnerabilities affecting SonicWall Email Security products: CVE-2021-20021, CVE-2021-20022, and CVE-2021-20023. A remote attacker could exploit these vulnerabilities to take control…

Comments Off on SonicWall Releases Patches for Email Security Products

CISA Issues Emergency Directive on Pulse Connect Secure

Original release date: April 20, 2021CISA has issued Emergency Directive (ED) 21-03, as well as Alert AA21-110A, to address the exploitation of vulnerabilities affecting Pulse Connect Secure (PCS) software. An…

Comments Off on CISA Issues Emergency Directive on Pulse Connect Secure